$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: UYksApbkI7NQOWfwUMgwi0QVLclpNNAvvoUKaZgm35A= Subject key identifier: 6B:41:67:73:A8:ED:F7:47:7D:54:3A:6E:29:3D:23:1F:EB:38:01:62 Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: CF Signing time: Mon 03 Nov 2025 05:42:32 +0000 Manifest this update: Mon 03 Nov 2025 05:42:32 +0000 Manifest next update: Mon 10 Nov 2025 05:42:32 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: aWSCakbg3QR+ZWDkPkDwpyX7TYfswkO3JlHnre7WWOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB, serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Nov 3 05:42:32 2025 GMT Not After : Nov 10 05:42:32 2025 GMT Subject: CN=690840c8-468d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:73:b9:77:20:d2:38:2a:64:3a:b3:20:46:3f: ff:f0:65:87:26:95:88:16:2b:18:0f:d4:af:6d:6a: c5:97:ef:31:71:09:60:07:6b:ca:5c:8f:c7:d9:05: 4c:2e:78:18:16:ff:9f:74:4e:eb:98:d9:6a:ca:7e: 1b:77:20:13:dc:06:b9:6c:0b:d1:63:a9:05:54:fc: 52:42:91:a0:1f:97:24:dd:a1:d7:84:99:05:43:76: 15:6a:0d:69:0d:98:63:23:88:c5:2e:db:67:0f:1c: b6:9d:27:97:8a:24:db:e0:fd:1c:be:b5:bc:1e:90: 9c:1f:61:e3:c4:a9:61:91:9c:3f:50:6a:aa:61:bd: f7:5c:a4:4b:9b:49:f2:10:4d:d5:2a:12:33:31:63: 31:c6:ea:05:71:84:97:05:ec:f1:a7:3f:49:ae:51: 6b:72:59:23:bc:57:d6:74:9b:cd:a5:3f:e4:f6:50: 42:21:a9:e2:8e:95:bf:1e:50:1c:f9:dc:3e:3e:c9: be:d4:54:d5:43:b2:a0:37:82:bd:6a:ee:c8:3a:42: c8:9f:5c:62:19:7a:d5:44:3f:de:61:4b:a1:92:b3: 92:6f:d5:b9:12:42:a4:e9:b9:84:83:88:02:d9:7d: f6:92:20:88:7b:47:d7:22:1d:cc:65:33:49:21:dc: 86:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:41:67:73:A8:ED:F7:47:7D:54:3A:6E:29:3D:23:1F:EB:38:01:62 X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:aa:58:ed:3a:4d:e6:28:20:b6:f6:ff:48:b2:29:56:91:1b: a4:f5:a0:7a:e5:e8:63:30:2d:a5:29:63:da:37:a0:ac:cb:06: 59:e5:c6:17:00:bf:37:8e:df:50:38:10:be:cc:23:f3:f7:94: 87:4c:82:01:90:60:ab:a4:0e:41:68:25:a0:39:c7:9f:21:46: dd:18:22:b1:90:70:ac:91:e7:8a:5e:9c:62:f5:86:ff:e3:5b: 05:79:da:fc:e3:7b:04:53:36:9b:d2:5a:85:35:dc:f1:9f:ca: 64:fc:d4:2d:e7:e8:b1:e0:1d:50:2d:b3:a8:d5:9c:ff:22:b5: 2a:e4:9b:f7:ef:61:9b:13:75:35:92:4d:ee:be:f5:05:24:9c: 9c:3c:42:3d:a4:8d:ad:5a:b4:48:e1:63:04:9f:45:fe:3c:3e: 7e:30:bb:cb:1b:e8:bb:fa:5d:6d:49:60:28:47:52:4d:bd:d3: 57:69:a0:dc:c4:60:ba:59:6f:52:46:6d:fd:c6:a4:ec:f5:ac: 76:29:ef:24:25:3f:0a:6b:82:4f:bc:79:0f:73:c6:53:79:98: ac:5d:60:d3:33:e0:54:80:81:ae:ef:e9:1d:c7:08:cd:7c:69: bb:96:9b:2b:65:f9:ca:2c:f3:7a:19:5c:10:3d:6c:ca:95:07: 83:a9:ba:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA3QkIxMTAvBgNVBAUTKDQ0RjlDNERBNDdFNjM3MUZEMUM5RjlGOEU1NjREMTgw M0EwRjMyODcwHhcNMjUxMTAzMDU0MjMyWhcNMjUxMTEwMDU0MjMyWjAYMRYwFAYD VQQDEw02OTA4NDBjOC00NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HO5dyDSOCpkOrMgRj//8GWHJpWIFisYD9SvbWrFl+8xcQlgB2vKXI/H2QVM LngYFv+fdE7rmNlqyn4bdyAT3Aa5bAvRY6kFVPxSQpGgH5ck3aHXhJkFQ3YVag1p DZhjI4jFLttnDxy2nSeXiiTb4P0cvrW8HpCcH2HjxKlhkZw/UGqqYb33XKRLm0ny EE3VKhIzMWMxxuoFcYSXBezxpz9JrlFrclkjvFfWdJvNpT/k9lBCIanijpW/HlAc +dw+Psm+1FTVQ7KgN4K9au7IOkLIn1xiGXrVRD/eYUuhkrOSb9W5EkKk6bmEg4gC 2X32kiCIe0fXIh3MZTNJIdyGMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtBZ3Oo 7fdHfVQ6bik9Ix/rOAFiMB8GA1UdIwQYMBaAFET5xNpH5jcf0cn5+OVk0YA6DzKH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDdCQi8wQUU0ODI5MDdD QjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54X1J5Zm40NVdUUmdEb1BN b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1vYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDdCQi8wQUU0ODI5MDdDQjMxMUVGOTZDOUYyNTBDNEY5QUUwMi9SUG5FMmtmbU54 X1J5Zm40NVdUUmdEb1BNb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdqljtOk3mKCC29v9IsilWkRuk9aB65ehjMC2lKWPaN6CsywZZ5cYX AL83jt9QOBC+zCPz95SHTIIBkGCrpA5BaCWgOcefIUbdGCKxkHCskeeKXpxi9Yb/ 41sFedr843sEUzab0lqFNdzxn8pk/NQt5+ix4B1QLbOo1Zz/IrUq5Jv372GbE3U1 kk3uvvUFJJycPEI9pI2tWrRI4WMEn0X+PD5+MLvLG+i7+l1tSWAoR1JNvdNXaaDc xGC6WW9SRm39xqTs9ax2Ke8kJT8Ka4JPvHkPc8ZTeZisXWDTM+BUgIGu7+kdxwjN fGm7lpsrZfnKLPN6GVwQPWzKlQeDqbp1 -----END CERTIFICATE-----Generated at Wed Nov 5 06:33:26 2025 by rpki-client